Does anybody know which mailing list addresses security issues? Logwatch on my server reported this:
apache logged in from dsl-82-199-133-138.dutchdsl.nl (82.199.133.138) using password: 1 Time(s)
My apache account is active so I can su to it to administer postgresql databases accessable via php scripts. No password is set. It was my understanding that it would be impossible to log in except via su from root. Either I'm dead wrong or there's a security hole which needs fixed.
thanks Scott Becker
